search

quarkusio / quarkus

Quarkus: Supersonic Subatomic Java.
https://quarkus.io
Apache License 2.0
13.44k stars 2.58k forks source link

New TLS registry: How to configure certificate reload period? #41758

Open sdavids opened 4 weeks ago

sdavids commented 4 weeks ago

Describe the bug

https://quarkus.io/guides/tls-registry-reference

There is no example of how to configure the certificate reload period.

Expected behavior

There is a migration example for:

quarkus.http.ssl.certificate.files=cert.pem
quarkus.http.ssl.certificate.key-files=key.pem
quarkus.http.ssl.certificate.reload-period=30s

quarkus.tls.key-store.pem.0.cert=cert.pem
quarkus.tls.key-store.pem.0.key=key.pem
??? quarkus.tls.key-store.pem.0.reload-period=30s ???

Actual behavior

No response

How to Reproduce?

No response

Output of uname -a or ver

No response

Output of java -version

No response

Quarkus version or git rev

3.12.1

Build tool (ie. output of mvnw --version or gradlew --version)

No response

Additional information

No response

quarkus-bot[bot] commented 4 weeks ago

/cc @radcortez (config)

geoand commented 3 weeks ago

cc @cescoffier

cescoffier commented 3 weeks ago

That feature has not been released yet, but you can see the "next-to-be" documentation on: https://quarkus.io/version/main/guides/tls-registry-reference#reloading-certificates

Note that the TLS registry, unlike the previous approach let you implement your own reloader (so not only periodic)